diff options
author | Harald Eilertsen <haraldei@anduin.net> | 2021-09-17 08:55:49 +0200 |
---|---|---|
committer | Harald Eilertsen <haraldei@anduin.net> | 2021-09-17 08:55:49 +0200 |
commit | 9340fddbac59a2aab12dd0fa0e122b4d7c3bf0c8 (patch) | |
tree | 3a58480fefb2f790023d35a62462140d07144b3e /includes/admin/views/_edit_concert_form.php | |
parent | d3fdcf53bcaf4b143c316f3379190d0053a6036f (diff) | |
download | gigologadmin-9340fddbac59a2aab12dd0fa0e122b4d7c3bf0c8.tar.gz gigologadmin-9340fddbac59a2aab12dd0fa0e122b4d7c3bf0c8.tar.bz2 gigologadmin-9340fddbac59a2aab12dd0fa0e122b4d7c3bf0c8.zip |
Add CSRF checks for edit concert form.
Diffstat (limited to 'includes/admin/views/_edit_concert_form.php')
-rw-r--r-- | includes/admin/views/_edit_concert_form.php | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/includes/admin/views/_edit_concert_form.php b/includes/admin/views/_edit_concert_form.php index 32ca762..61f2bf4 100644 --- a/includes/admin/views/_edit_concert_form.php +++ b/includes/admin/views/_edit_concert_form.php @@ -48,6 +48,7 @@ if (!class_exists("GiglogAdmin_EditConcertForm")) $content='<div><h3>Form to create/edit concerts and venues</h3><br></div><div class="editform"><div class="concertform">'; $content.='<form method="POST" action="" class="concert" >' .'<div class="concertitems"><strong>CONCERT DETAILS</strong><br><br><fieldset>' + . wp_nonce_field( plugin_basename( __FILE__ ), 'giglog_edit_concert_nonce' ) .'<input type="hidden" name="pid" value="' .$c->id(). '" />' .'<label for="cname">Concert Name:</label><textarea id="cname" name="cname" value="'.$c->cname().'">'.$c->cname().'</textarea><br>' .'<label for="venue">Venue:</label>' . $this->get_venue_selector($c->venue()) . '<br>' |